Design and Development of IDS for AVB/TSN
In the past few years, the number of attacks focusing on automotive systems have grown tremendously. In general, to combat such attacks, the use of a layered model of security is advised, where complementary security mechanisms can be applied to protect devices. Among them are Intrusion Detection Sy...
Main Author: | NASCIMENTO, Rodrigo Antônio Alves do |
---|---|
Other Authors: | CAMPELO, Divanilson Rodrigo de Sousa |
Format: | masterThesis |
Language: | eng |
Published: |
Universidade Federal de Pernambuco
2020
|
Subjects: | |
Online Access: |
https://repositorio.ufpe.br/handle/123456789/37619 |
Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
id |
ir-123456789-37619 |
---|---|
recordtype |
dspace |
spelling |
ir-123456789-376192020-08-13T05:15:15Z Design and Development of IDS for AVB/TSN NASCIMENTO, Rodrigo Antônio Alves do CAMPELO, Divanilson Rodrigo de Sousa http://lattes.cnpq.br/3406137556910567 http://lattes.cnpq.br/9838400375894439 Redes de computadores Segurança In the past few years, the number of attacks focusing on automotive systems have grown tremendously. In general, to combat such attacks, the use of a layered model of security is advised, where complementary security mechanisms can be applied to protect devices. Among them are Intrusion Detection System (IDS), which monitor systems to detect anomalous activities. With the emerging use of deterministic Ethernet brought by AVB/TSN into automotive Ethernet networks, newer attack surfaces are expected in cars. These are related to the set of new features to enable the parallel transmission of time-sensitive and best-effort media, management data, stream reservation, time synchronization and the connections among them. This thesis fills the gap left by previous works by: Summarizing exploitation vectors present on transport protocols (IEEE 1722/1733), management protocol (IEEE 1722.1) and time synchronization (IEEE 802.1AS); Dis-cussing the software/hardware requirements of the IDS, which also incorporates IEEE 802.1Qci features, deployed on an automotive switch present in a central gateway; Sharing the challenges of designing and implementing an IDS for AVB/TSN; Introducing IDS concepts for other TSN protocols such as 802.1CB and 802.1Qbu. To conclude the thesis, the results of a practical testbed using automotive equipment and testing tools used to confirm the feasibility of such a system will be shown. This evaluation measures whether the IDS, as an additional processing layer in the switch, impacts on the normal switch performance. CAPES Nos últimos anos, o número de ataques à sistemas automotivos aumentou tremendamente. Em geral, para combater tais ameaças, o uso de um modelo de segurança em camadas permite que uma série de mecanismos de segurança sejam aplicados para proteger os elementos de rede. Entre eles estão os Sistemas de Detecção de Intrusão (IDS), que monitoram sistemas afim de detectar atividades anômalas. Com o advento AVB/TSN (Audio Video Bridging/Time Sensitive Networking) para redes Ethernet automotivas, no-vas superfícies de ataques são esperadas em carros. Estas superfícieis estão relacionadas ao número de novas funcionalidades que permitem a transmissão paralela de dados sensíveis ao tempo e tráfego de melhor-esforço, dados de configurações, reserva de recursos, sincronização de relógios, e conexões entre dispositivos. Este trabalho visa preencher a lacuna deixada por trabalhos anteriores com as devidas contribuições: Apresentação dos vetores de ataques presentes nos protocolos de transporte (IEEE 1722/1733), protocolos de configuração (IEEE 1722.1) e protocolo de sincronização de relógios (IEEE 802.1AS); Discussão dos requisitos de software e hardware para o desenvolvimento de um IDS, incorporando os conceitos sugeridos pelo padrão IEEE 802.1Qci, visando um gateway automotivo como plataforma de integração; Introdução de detalhes adicionais que precisam ser levados em consideração à medida que outros protocolos ainda não finalizados ou pouco usados como o IEEE 802.1CB e o 802.1Qbu são introduzidos nos sistemas. A dissertação também apresenta resultados de um testbed utilizando hardware automotivo e ferramentas de testes serão apresentados de forma a avaliar a viabilidade do sistema IDS. Esta avaliação indica se o IDS, por ser uma camada de processamento adicional em um switch Ethernet automotivo, impacta de forma considerável no desempenho da operação normal deste switch. 2020-08-12T17:22:25Z 2020-08-12T17:22:25Z 2019-05-29 masterThesis NASCIMENTO, Rodrigo Antônio Alves do. Design and Development of IDS for AVB/TSN. 2019. Dissertação (Mestrado em Ciência da Computação) – Universidade Federal de Pernambuco, Recife, 2019. https://repositorio.ufpe.br/handle/123456789/37619 eng embargoedAccess Attribution-NonCommercial-NoDerivs 3.0 Brazil http://creativecommons.org/licenses/by-nc-nd/3.0/br/ application/pdf Universidade Federal de Pernambuco UFPE Brasil Programa de Pos Graduacao em Ciencia da Computacao |
institution |
REPOSITORIO UFPE |
collection |
REPOSITORIO UFPE |
language |
eng |
topic |
Redes de computadores Segurança |
spellingShingle |
Redes de computadores Segurança NASCIMENTO, Rodrigo Antônio Alves do Design and Development of IDS for AVB/TSN |
description |
In the past few years, the number of attacks focusing on automotive systems have grown tremendously. In general, to combat such attacks, the use of a layered model of security is advised, where complementary security mechanisms can be applied to protect devices. Among them are Intrusion Detection System (IDS), which monitor systems to detect anomalous activities. With the emerging use of deterministic Ethernet brought by AVB/TSN into automotive Ethernet networks, newer attack surfaces are expected in cars. These are related to the set of new features to enable the parallel transmission of time-sensitive and best-effort media, management data, stream reservation, time synchronization and the connections among them. This thesis fills the gap left by previous works by: Summarizing exploitation vectors present on transport protocols (IEEE 1722/1733), management protocol (IEEE 1722.1) and time synchronization (IEEE 802.1AS); Dis-cussing the software/hardware requirements of the IDS, which also incorporates IEEE 802.1Qci features, deployed on an automotive switch present in a central gateway; Sharing the challenges of designing and implementing an IDS for AVB/TSN; Introducing IDS concepts for other TSN protocols such as 802.1CB and 802.1Qbu. To conclude the thesis, the results of a practical testbed using automotive equipment and testing tools used to confirm the feasibility of such a system will be shown. This evaluation measures whether the IDS, as an additional processing layer in the switch, impacts on the normal switch performance. |
author2 |
CAMPELO, Divanilson Rodrigo de Sousa |
format |
masterThesis |
author |
NASCIMENTO, Rodrigo Antônio Alves do |
author_sort |
NASCIMENTO, Rodrigo Antônio Alves do |
title |
Design and Development of IDS for AVB/TSN |
title_short |
Design and Development of IDS for AVB/TSN |
title_full |
Design and Development of IDS for AVB/TSN |
title_fullStr |
Design and Development of IDS for AVB/TSN |
title_full_unstemmed |
Design and Development of IDS for AVB/TSN |
title_sort |
design and development of ids for avb/tsn |
publisher |
Universidade Federal de Pernambuco |
publishDate |
2020 |
url |
https://repositorio.ufpe.br/handle/123456789/37619 |
_version_ |
1680625202819497984 |
score |
13.657419 |